Overview

overview

10

Static

static

3

abf693acc3...cs.exe

windows7-x64

10

abf693acc3...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    abf693acc328443d7e069af63f5f6a10_NeikiAnalytics.exe

  • Size

    64KB

  • Sample

    240520-e2dh8sbe94

  • MD5

    abf693acc328443d7e069af63f5f6a10

  • SHA1

    1df4ed518b156dd72a911eb8c59341c4b6691a8d

  • SHA256

    f27f58fe56639ff9633879a9c390b97d46e4dc5d0b02ecd65298ed1410caf7b8

  • SHA512

    41a6ec58ce2bddb89bd034a3c59d5c2cfb1e8749975689bb1d67cdeb690e7aa8b7de5db0ef55543ec162028e627c5cef0caa93c3f5e861a7086ecb9cdb658ba6

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJULh126:ymb3NkkiQ3mdBjFIFdJmN

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      abf693acc328443d7e069af63f5f6a10_NeikiAnalytics.exe

    • Size

      64KB

    • MD5

      abf693acc328443d7e069af63f5f6a10

    • SHA1

      1df4ed518b156dd72a911eb8c59341c4b6691a8d

    • SHA256

      f27f58fe56639ff9633879a9c390b97d46e4dc5d0b02ecd65298ed1410caf7b8

    • SHA512

      41a6ec58ce2bddb89bd034a3c59d5c2cfb1e8749975689bb1d67cdeb690e7aa8b7de5db0ef55543ec162028e627c5cef0caa93c3f5e861a7086ecb9cdb658ba6

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJULh126:ymb3NkkiQ3mdBjFIFdJmN

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks